Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
jamet
Návštěvník
Návštěvník
Příspěvky: 116
Registrován: 10 pro 2008 21:08

Kontrola

#1 Příspěvek od jamet »

Dobrý den pánové,

moc bych chtěl poprosít o kontrolu PC. Jedná se o stařičký PC známé, která mne poprosila o "oživení". Koupil jsem tedy nějakou tu ramku pročistil pc ccleanerem, ale dál moje vědomosti nesahají. Rád bych tedy znal Váš názor co by se dalo ještě vylepšit. Windows je stále takovej "těžkopádnej" a reinstal bych dělat moc nechtěl.

Děkuji Petr.

Logfile of random's system information tool 1.06 (written by random/random)
Run by admin at 2013-11-06 14:54:33
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 99 GB (86%) free of 114 GB
Total RAM: 2047 MB (74% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\avast! Emergency Update.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-05 606544]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-09-16 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EFA17361-CDC0-4927-9AFC-BAAD1F96B2AE}]
Toolbar BHO - C:\Program Files\IObitBar\toolbar\1.bin\i0bar.dll [2010-10-21 638976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} - IObit Toolbar - C:\Program Files\IObitBar\toolbar\1.bin\i0bar.dll [2010-10-21 638976]
{D5D47440-0750-463D-BAEF-A47D02414806}
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-05 606544]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-10-24 90112]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"RemoteControl"=C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe [2005-01-12 32768]
""= []
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-05 3568312]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2011-10-28 49208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.7\ICQ.exe [2013-10-03 127040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObitBar Browser Plugin Loader]
C:\PROGRA~1\IObitBar\toolbar\1.bin\i0brmon.exe [2010-10-21 20480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoTerm.exe]
C:\Program Files\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe [2012-06-06 227200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2013-10-02 20472992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^AVerQuick.lnk]
C:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERQU~1.EXE [2010-06-28 718336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2005-05-11 282624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^SnugTV Quick Start.lnk]
C:\WINDOWS\INSTAL~1\{AB3ED~1\NEWSHO~2.EXE [2013-10-01 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Vyhledat aktualizace.lnk]
C:\PROGRA~1\COMMON~1\PCTVSY~1\WEBUPD~1\WEBUPD~1.EXE [2009-04-17 238864]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
AVer HID Receiver.lnk - C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe

C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění
Sledovat výstrahy inkoustu - HP Photosmart Plus B210 series.lnk - C:\WINDOWS\system32\RunDll32.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\SnugTV\SnugTV Station\ConfigWizard.exe"="C:\Program Files\SnugTV\SnugTV Station\ConfigWizard.exe:*:Enabled:SnugTV Configuration Wizard"
"C:\Program Files\ICQ7.7\ICQ.exe"="C:\Program Files\ICQ7.7\ICQ.exe:*:Enabled:ICQ7.7"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\DeviceSetup.exe"="C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\DeviceSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP (HP Photosmart Plus B210 series)"
"C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe"="C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe:LocalSubNet:Enabled:Síťový komunikační program HP (HP Photosmart Plus B210 series)"
"C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicatorCom.exe"="C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicatorCom.exe:LocalSubNet:Enabled:Síťový komunikační program HP COM (HP Photosmart Plus B210 series)"
"C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe"="C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe:*:Enabled:SnugTV Service"
"C:\Program Files\PCTV Systems\TVCenter\TVCenter.exe"="C:\Program Files\PCTV Systems\TVCenter\TVCenter.exe:*:Enabled:PCTV Systems TVCenter"
"C:\Program Files\Common Files\PCTV Systems\PVR\VideoControl.exe"="C:\Program Files\Common Files\PCTV Systems\PVR\VideoControl.exe:*:Enabled:PCTV Systems VideoControl"
"C:\Program Files\Common Files\PCTV Systems\StreamingServer\StrmServer.exe"="C:\Program Files\Common Files\PCTV Systems\StreamingServer\StrmServer.exe:*:Enabled:PCTV Systems DistanTV classic"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.7\ICQ.exe"="C:\Program Files\ICQ7.7\ICQ.exe:*:Enabled:ICQ7.7"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{92745003-32a1-11db-b390-806d6172696f}]
shell\AutoRun\command - D:\setup.exe


======List of files/folders created in the last 1 months======

2013-11-06 14:49:57 ----D---- C:\rsit
2013-11-06 14:49:57 ----D---- C:\Program Files\trend micro
2013-11-05 12:45:25 ----D---- C:\Documents and Settings\admin\Data aplikací\AVAST Software
2013-11-05 12:42:09 ----A---- C:\WINDOWS\system32\aswBoot.exe
2013-11-05 12:41:24 ----D---- C:\Program Files\AVAST Software
2013-11-05 12:30:14 ----A---- C:\WINDOWS\ntbtlog.txt
2013-11-04 23:30:52 ----A---- C:\WINDOWS\system32\msonpmon.dll
2013-11-04 23:28:50 ----D---- C:\Program Files\Microsoft Works
2013-11-04 23:27:37 ----D---- C:\Program Files\Microsoft Visual Studio
2013-11-04 23:27:36 ----D---- C:\Program Files\Common Files\DESIGNER
2013-11-04 23:26:06 ----D---- C:\Program Files\Microsoft.NET
2013-11-04 23:22:59 ----D---- C:\Program Files\Microsoft Visual Studio 8
2013-11-04 23:22:07 ----D---- C:\WINDOWS\SHELLNEW
2013-11-04 23:20:56 ----D---- C:\Program Files\Microsoft Office
2013-11-04 23:20:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-11-04 23:20:05 ----RHD---- C:\MSOCache
2013-11-04 21:37:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-11-04 21:18:42 ----D---- C:\Program Files\CPUID
2013-11-04 19:51:29 ----D---- C:\WINDOWS\pss
2013-11-04 18:55:19 ----D---- C:\Program Files\CCleaner
2013-11-04 18:12:48 ----D---- C:\Documents and Settings\admin\Data aplikací\Apple Computer
2013-10-27 11:33:51 ----A---- C:\WINDOWS\system32\34CoInstaller.dll
2013-10-27 11:30:26 ----D---- C:\Program Files\PCTV Systems
2013-10-27 11:30:26 ----D---- C:\Program Files\Common Files\PCTV Systems
2013-10-27 11:27:52 ----D---- C:\Documents and Settings\All Users\Data aplikací\PCTV Systems
2013-10-18 20:15:33 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2013-10-17 21:06:46 ----D---- C:\WINDOWS\system32\XPSViewer
2013-10-17 21:06:39 ----D---- C:\Program Files\MSBuild
2013-10-17 21:06:36 ----D---- C:\WINDOWS\system32\en-US
2013-10-17 21:06:26 ----D---- C:\Program Files\Reference Assemblies
2013-10-17 21:05:44 ----N---- C:\WINDOWS\system32\prntvpt.dll
2013-10-17 21:05:43 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2013-10-17 21:05:43 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2013-10-17 21:05:42 ----D---- C:\3f2433672f322c2f662bb99258331c4c
2013-10-17 21:04:18 ----RSD---- C:\WINDOWS\assembly
2013-10-17 21:03:26 ----D---- C:\WINDOWS\Microsoft.NET
2013-10-09 21:34:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2013-10-09 21:34:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2013-10-09 21:29:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2013-10-09 21:28:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2883150$
2013-10-09 21:28:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2013-10-07 20:05:25 ----D---- C:\Program Files\HP Photo Creations
2013-10-07 20:05:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\Visan
2013-10-07 20:05:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP Photo Creations
2013-10-07 20:04:07 ----D---- C:\Documents and Settings\admin\Data aplikací\HpUpdate
2013-10-07 20:03:53 ----N---- C:\WINDOWS\system32\HPDiscoPM8e11.dll
2013-10-07 20:03:47 ----A---- C:\WINDOWS\system32\HPWia1_PSB210.dll
2013-10-07 20:03:47 ----A---- C:\WINDOWS\system32\HPScanTRDrv_PSB210.dll
2013-10-07 20:03:32 ----A---- C:\WINDOWS\system32\hpinksts8e11.dll
2013-10-07 20:03:32 ----A---- C:\WINDOWS\system32\hpinkcoi8e11.dll
2013-10-07 20:03:31 ----DC---- C:\WINDOWS\system32\DRVSTORE
2013-10-07 20:03:31 ----A---- C:\WINDOWS\system32\hpinksts8e11LM.dll
2013-10-07 20:03:31 ----A---- C:\WINDOWS\system32\hpinkins8e11.exe
2013-10-07 20:02:41 ----A---- C:\Documents and Settings\All Users\Data aplikací\Ament.ini
2013-10-07 16:56:28 ----A---- C:\WINDOWS\SchedLgU.Txt

======List of files/folders modified in the last 1 months======

2013-11-06 14:50:48 ----D---- C:\WINDOWS\Temp
2013-11-06 14:50:24 ----D---- C:\WINDOWS\Prefetch
2013-11-06 14:49:57 ----RD---- C:\Program Files
2013-11-06 14:48:14 ----D---- C:\Program Files\Mozilla Firefox
2013-11-06 14:42:44 ----D---- C:\WINDOWS\system32\CatRoot2
2013-11-06 14:30:27 ----D---- C:\WINDOWS
2013-11-05 12:42:27 ----SD---- C:\WINDOWS\Tasks
2013-11-05 12:42:12 ----D---- C:\WINDOWS\system32\drivers
2013-11-05 12:42:09 ----D---- C:\WINDOWS\WinSxS
2013-11-05 12:42:09 ----D---- C:\WINDOWS\system32
2013-11-05 12:33:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2013-11-05 12:32:59 ----D---- C:\Program Files\Alwil Software
2013-11-05 12:30:43 ----D---- C:\Documents and Settings
2013-11-04 23:31:36 ----SHD---- C:\WINDOWS\Installer
2013-11-04 23:31:29 ----HD---- C:\Config.Msi
2013-11-04 23:30:25 ----D---- C:\WINDOWS\system32\config
2013-11-04 23:28:41 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-11-04 23:27:36 ----D---- C:\Program Files\Common Files
2013-11-04 23:26:41 ----RSD---- C:\WINDOWS\Fonts
2013-11-04 23:26:06 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2013-11-04 23:22:25 ----A---- C:\WINDOWS\win.ini
2013-11-04 23:22:22 ----D---- C:\Program Files\Common Files\System
2013-11-04 23:20:57 ----HD---- C:\WINDOWS\inf
2013-11-04 20:39:53 ----D---- C:\WINDOWS\system32\Restore
2013-11-04 18:56:51 ----D---- C:\WINDOWS\Debug
2013-11-04 18:37:09 ----D---- C:\Documents and Settings\admin\Data aplikací\Skype
2013-11-04 18:36:56 ----D---- C:\Documents and Settings\admin\Data aplikací\ICQ
2013-11-04 18:15:55 ----D---- C:\Program Files\HP
2013-11-04 18:14:03 ----D---- C:\Program Files\Micropro
2013-11-04 18:11:56 ----D---- C:\Program Files\Rainlendar2
2013-11-04 18:06:01 ----RSHDC---- C:\WINDOWS\system32\dllcache
2013-10-27 14:01:41 ----SD---- C:\Documents and Settings\admin\Data aplikací\Microsoft
2013-10-27 07:08:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2013-10-18 20:15:56 ----D---- C:\WINDOWS\system32\CatRoot
2013-10-17 21:06:08 ----D---- C:\WINDOWS\system32\spool
2013-10-17 21:03:36 ----D---- C:\WINDOWS\system32\mui
2013-10-17 21:03:36 ----D---- C:\Program Files\Internet Explorer
2013-10-09 21:33:34 ----D---- C:\WINDOWS\system32\MRT
2013-10-09 21:30:07 ----A---- C:\WINDOWS\system32\MRT.exe
2013-10-09 21:29:12 ----D---- C:\WINDOWS\ie8updates
2013-10-07 20:08:45 ----D---- C:\WINDOWS\system32\LogFiles
2013-10-07 20:03:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\HP
2013-10-07 20:02:54 ----D---- C:\WINDOWS\twain_32

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr.sys []
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys []
R1 aswTdi;aswTdi; \??\C:\WINDOWS\system32\drivers\aswTdi.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R2 aswFsBlk;aswFsBlk; \??\C:\WINDOWS\system32\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE; C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2006-12-18 1121536]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-10-26 3786944]
R3 azvusb;Virtual USB Hub; C:\WINDOWS\system32\DRIVERS\azvusb.sys [2009-08-24 44544]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-03-18 30336]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 AVerHybrid;AVerMedia Hybrid Tuner (NTSC/PAL/SECAM/DVB-T/FM); C:\WINDOWS\system32\drivers\averhbtv.sys [2007-04-30 302848]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSICPL;MSICPL; \??\D:\install4\MSICPL.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-05 50344]
R2 AVerRemote;AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [2009-10-30 348160]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-07 397312]
R2 AVerUpdateServer;AVerUpdateServer; C:\Program Files\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2010-05-07 167936]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2005-06-20 53248]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 SnugTV Service;SnugTV Service; C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe [2010-05-06 528384]
S2 gupdate1ca16bfb9352374;Služba Google Update (gupdate1ca16bfb9352374); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-08-06 133104]
S2 IObitBarService;IObit Toolbar Service; C:\PROGRA~1\IObitBar\toolbar\1.bin\i0barsvc.exe [2010-10-21 28766]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-11-11 131139]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-08-06 133104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-05-11 117144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#2 Příspěvek od vyosek »

Zdravim :)

:arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
jamet
Návštěvník
Návštěvník
Příspěvky: 116
Registrován: 10 pro 2008 21:08

Re: Kontrola

#3 Příspěvek od jamet »

Děkuji za rychlou odpověď zde přikládám logy:

JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Microsoft Windows XP x86
Ran by admin on st 06.11.2013 at 19:21:54,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yahoopartnertoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&search
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\imside1egate.application.1
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{099EF85B-3260-4b87-9239-33355EE6A548}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{099EF85B-3260-4b87-9239-33355EE6A548}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EFA17361-CDC0-4927-9AFC-BAAD1F96B2AE}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files\icq6toolbar"
Successfully deleted: [Folder] "C:\Program Files\iobitbar"



~~~ FireFox

Successfully deleted: [File] C:\Documents and Settings\admin\Data aplikacˇ\mozilla\firefox\profiles\5r9alnj5.default\user.js
Successfully deleted the following from C:\Documents and Settings\admin\Data aplikacˇ\mozilla\firefox\profiles\5r9alnj5.default\prefs.js

user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 06.11.2013 at 19:31:17,00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



a

# AdwCleaner v3.011 - Report created 06/11/2013 at 19:51:23
# Updated 03/11/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : admin - OEM-B27108F5DB5
# Running from : C:\Documents and Settings\admin\Plocha\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Data aplikací\ICQ\ICQToolbar
Folder Deleted : C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\ICQToolbarData
Folder Deleted : C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
File Deleted : C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\icqplugin.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v21.0 (cs)

[ File : C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\prefs.js ]

Line Deleted : user_pref("extensions.IObitBar.openSearchURL", "hxxp://results.myway.com/opensearch.jhtml?id=YI&ptb=A1937B75-B6B5-42EA-AC68-8A7A5575069E&ind=2010102112&osp=mwg&ptnrS=YI&si=&st=sb&n=");
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("icqtoolbar.engineVerified", false);
Line Deleted : user_pref("icqtoolbar.firstTbRun", false);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1383284786);
Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
Line Deleted : user_pref("icqtoolbar.installTime", "1380959683");
Line Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
Line Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "21.0");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.uniqueID", "138081364413808133941380819531874");
Line Deleted : user_pref("icqtoolbar.version", "1.5.3");

-\\ Google Chrome v30.0.1599.101

[ File : C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3779 octets] - [06/11/2013 19:48:28]
AdwCleaner[S0].txt - [3694 octets] - [06/11/2013 19:51:23]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3754 octets] ##########
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#4 Příspěvek od vyosek »

Poprosim o log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=30&t=133101
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
jamet
Návštěvník
Návštěvník
Příspěvky: 116
Registrován: 10 pro 2008 21:08

Re: Kontrola

#5 Příspěvek od jamet »

tady prosím:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-10-2013
Ran by admin (administrator) on OEM-B27108F5DB5 on 06-11-2013 22:12:20
Running from C:\Documents and Settings\admin\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Czech
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVerMedia) C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
() C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(HP) C:\WINDOWS\system32\HPZipm12.exe
(AVerMedia Technologies, Inc.) C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE
(Cyberlink Corp.) C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(forum.viry.cz) C:\Documents and Settings\admin\Plocha\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SoundMan] - C:\WINDOWS\soundman.exe [90112 2005-10-24] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [RemoteControl] - C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe [32768 2005-01-12] (Cyberlink Corp.)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-05] (AVAST Software)
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
MountPoints2: {92745003-32a1-11db-b390-806d6172696f} - D:\setup.exe
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledovat výstrahy inkoustu - HP Photosmart Plus B210 series.lnk
ShortcutTarget: Sledovat výstrahy inkoustu - HP Photosmart Plus B210 series.lnk -> C:\Program Files\HP\HP Photosmart Plus B210 series\bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\AVer HID Receiver.lnk
ShortcutTarget: AVer HID Receiver.lnk -> C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: HKCU - (No Name) - {7757CBCC-0975-4b79-A519-90B142CA3A23} - C:\Program Files\IObitBar\toolbar\1.bin\i0SrcAs.dll No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - Yahoo! URL = http://us.search.yahoo.com/search?p={se ... obit-trans
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {CF670C0A-2ED2-48F4-AA11-C9447F50C205} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - IObit Toolbar - {EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} - C:\Program Files\IObitBar\toolbar\1.bin\i0bar.dll No File
Toolbar: HKLM - No Name - {D5D47440-0750-463D-BAEF-A47D02414806} - No File
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - &Adresa - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Společnost Microsoft)
Toolbar: HKCU - &Odkazy - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {D5D47440-0750-463D-BAEF-A47D02414806} - No File
Toolbar: HKCU - IObit Toolbar - {EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} - C:\Program Files\IObitBar\toolbar\1.bin\i0bar.dll No File
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL [2210608 2006-10-27] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default
FF DefaultSearchEngine: ICQ Search
FF SelectedSearchEngine: ICQ Search
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin: @IObitBar.com/Plugin - C:\Program Files\IObitBar\toolbar\1.bin\NPi0Stub.dll No File
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\centrumcz.xml
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\icqplugin.gif
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\icqplugin.src
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\IObitBar.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Cetrumcz_igeared.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Firefox\Extensions: [i0ffxtbr@IObitBar.com] - C:\Program Files\IObitBar\toolbar\1.bin
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR HomePage: hxxp://www.seznam.cz/
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Skype Toolbars) - C:\Documents and Settings\admin\Local Settings\Data aplikac\u00ED\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8312_0\npSkypeChromePlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (DivX Web Player) - C:\Program Files\Mozilla Firefox\plugins\npdivx32.dll (DivX,Inc.)
CHR Plugin: (DivX Player Netscape Plugin) - C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (IObit Toolbar Plugin Stub) - C:\Program Files\IObitBar\toolbar\1.bin\NPi0Stub.dll No File
CHR Extension: (avast! Online Security) - C:\DOCUME~1\admin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_0
CHR Extension: (Skype Click to Call) - C:\DOCUME~1\admin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.12.0.13601_0
CHR Extension: (Google Wallet) - C:\DOCUME~1\admin\LOCALS~1\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

========================== Services (Whitelisted) =================

R2 6to4; C:\Windows\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-05] (AVAST Software)
R2 AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [348160 2009-10-30] (AVerMedia)
R2 AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [397312 2009-12-07] ()
R2 AVerUpdateServer; C:\Program Files\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2010-05-07] (AVerMedia TECHNOLOGIES, Inc.)
S2 gupdate1ca16bfb9352374; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-08-06] (Google Inc.)
R2 SnugTV Service; C:\Program Files\SnugTV\SnugTV Station\AMAServer.exe [528384 2010-05-06] (AVerMedia Technologies, Inc.)
S2 IObitBarService; C:\PROGRA~1\IObitBar\toolbar\1.bin\i0barsvc.exe [x]

==================== Drivers (Whitelisted) ====================

R3 3xHybrid; C:\Windows\System32\DRIVERS\3xHybrid.sys [1121536 2006-12-18] (Philips Semiconductors GmbH)
R3 ALCXWDM; C:\Windows\System32\drivers\ALCXWDM.SYS [3786944 2005-10-26] (Realtek Semiconductor Corp.)
R2 aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [35656 2013-11-05] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2013-11-05] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2013-11-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2013-11-05] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [774392 2013-11-05] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [403440 2013-11-05] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2013-11-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178304 2013-11-05] ()
S3 AVerHybrid; C:\Windows\System32\drivers\averhbtv.sys [302848 2007-04-30] (AVerMedia TECHNOLOGIES, Inc.)
R3 azvusb; C:\Windows\System32\DRIVERS\azvusb.sys [44544 2009-08-24] (AzureWave Technologies, Inc.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51120 2005-03-08] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2005-03-08] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21744 2005-03-08] (HP)
S3 MPE; C:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 nm; C:\Windows\System32\DRIVERS\NMnt.sys [40320 2008-04-13] (Microsoft Corporation)
R3 RTL8023xp; C:\Windows\System32\DRIVERS\Rtlnicxp.sys [74496 2005-03-04] (Realtek Semiconductor Corporation )
S3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
R1 Tcpip6; C:\Windows\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
S3 GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS [x]
S3 MSICPL; \??\D:\install4\MSICPL.sys [x]
S3 NTACCESS; \??\D:\NTACCESS.sys [x]
U5 P3; C:\Windows\System32\Drivers\P3.sys [46592 2008-04-14] (Microsoft Corporation)
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 SetupNTGLM7X; \??\D:\NTGLM7X.sys [x]
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-06 22:11 - 2013-11-06 22:11 - 00000000 ____D C:\FRST
2013-11-06 22:10 - 2013-11-06 22:06 - 00112128 _____ (forum.viry.cz) C:\Documents and Settings\admin\Plocha\FRSTLauncher.exe
2013-11-06 22:10 - 2013-11-06 21:53 - 01089445 _____ (Farbar) C:\Documents and Settings\admin\Plocha\FRST.exe
2013-11-06 19:48 - 2013-11-06 19:51 - 00000000 ____D C:\AdwCleaner
2013-11-06 19:21 - 2013-11-06 19:21 - 00000000 ____D C:\WINDOWS\ERUNT
2013-11-06 19:20 - 2013-11-06 19:15 - 01073262 _____ C:\Documents and Settings\admin\Plocha\adwcleaner.exe
2013-11-06 19:19 - 2013-11-06 19:15 - 01034531 _____ (Thisisu) C:\Documents and Settings\admin\Plocha\JRT.exe
2013-11-06 14:49 - 2013-11-06 14:54 - 00000000 ____D C:\Program Files\trend micro
2013-11-06 14:49 - 2013-11-06 14:50 - 00000000 ____D C:\rsit
2013-11-06 14:30 - 2013-11-06 22:02 - 00000348 _____ C:\WINDOWS\setupact.log
2013-11-06 14:30 - 2013-11-06 14:30 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-11-05 12:45 - 2013-11-05 12:45 - 00000000 ____D C:\Documents and Settings\admin\Data aplikací\AVAST Software
2013-11-05 12:42 - 2013-11-06 22:07 - 00000362 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2013-11-05 12:42 - 2013-11-05 12:42 - 00774392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00403440 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00269216 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2013-11-05 12:42 - 2013-11-05 12:42 - 00178304 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00049944 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2013-11-05 12:42 - 2013-11-05 12:42 - 00035656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswFsBlk.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2013-11-05 12:41 - 2013-11-05 12:41 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-05 12:37 - 2013-11-05 12:34 - 87227720 _____ (AVAST Software) C:\Documents and Settings\admin\Plocha\avast_free_antivirus_setup.exe
2013-11-05 12:31 - 2013-11-05 12:31 - 00000000 __SHD C:\Documents and Settings\Administrator\IETldCache
2013-11-05 12:30 - 2013-11-05 12:34 - 00000000 ____D C:\Documents and Settings\Administrator\Plocha
2013-11-05 12:30 - 2013-11-05 12:33 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2013-11-05 12:30 - 2013-11-05 12:31 - 00000000 ____D C:\Documents and Settings\Administrator
2013-11-05 12:30 - 2009-08-06 16:02 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy
2013-11-05 12:30 - 2006-08-23 13:30 - 00000000 __RHD C:\Documents and Settings\Administrator\Data aplikací
2013-11-05 12:30 - 2006-08-23 13:30 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění
2013-11-05 12:30 - 2006-08-23 13:30 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start
2013-11-05 12:30 - 2006-08-23 13:30 - 00000000 ___HD C:\Documents and Settings\Administrator\Okolní tiskárny
2013-11-05 12:30 - 2006-08-23 13:30 - 00000000 ___HD C:\Documents and Settings\Administrator\Okolní síť
2013-11-05 12:30 - 2006-08-23 13:30 - 00000000 ____D C:\Documents and Settings\Administrator\Oblíbené položky
2013-11-05 12:30 - 2006-08-23 13:30 - 00000000 ____D C:\Documents and Settings\Administrator\Dokumenty
2013-11-05 12:30 - 2006-08-23 11:42 - 00001599 _____ C:\Documents and Settings\Administrator\Nabídka Start\Programy\Vzdálená pomoc.lnk
2013-11-05 12:30 - 2006-08-23 11:42 - 00000000 ___RD C:\Documents and Settings\Administrator\Nabídka Start\Programy\Příslušenství
2013-11-05 12:30 - 2006-08-23 11:42 - 00000000 ___HD C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2013-11-05 12:30 - 2006-08-23 11:38 - 00000000 ___HD C:\Documents and Settings\Administrator\Šablony
2013-11-04 23:31 - 2013-11-04 23:31 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Office
2013-11-04 23:30 - 2013-11-04 23:36 - 00065536 _____ C:\WINDOWS\system32\config\ODiag.evt
2013-11-04 23:30 - 2006-10-26 19:56 - 00032592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msonpmon.dll
2013-11-04 23:28 - 2013-11-04 23:28 - 00000000 ____D C:\Program Files\Microsoft Works
2013-11-04 23:27 - 2013-11-04 23:27 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2013-11-04 23:27 - 2013-11-04 23:27 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-11-04 23:26 - 2013-11-04 23:26 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-11-04 23:22 - 2013-11-04 23:27 - 00000000 ____D C:\WINDOWS\SHELLNEW
2013-11-04 23:22 - 2013-11-04 23:23 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 8
2013-11-04 23:21 - 2013-11-04 23:21 - 00000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\Microsoft Help
2013-11-04 23:20 - 2013-11-04 23:31 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-11-04 23:20 - 2013-11-04 23:28 - 00000000 ____D C:\Program Files\Microsoft Office
2013-11-04 23:20 - 2013-11-04 23:20 - 00000000 __RHD C:\MSOCache
2013-11-04 23:12 - 2013-09-03 09:34 - 00000000 ____D C:\Documents and Settings\admin\Plocha\Office 2007 cz
2013-11-04 23:08 - 2013-11-06 22:02 - 00050656 _____ C:\WINDOWS\setupapi.log
2013-11-04 21:37 - 2013-11-05 12:38 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-11-04 21:18 - 2013-11-04 21:18 - 00000000 ____D C:\Program Files\CPUID
2013-11-04 21:18 - 2013-11-04 21:18 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CPUID
2013-11-04 19:51 - 2013-11-04 19:51 - 00000000 ____D C:\WINDOWS\pss
2013-11-04 18:55 - 2013-11-04 18:55 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2013-11-04 18:55 - 2013-11-04 18:55 - 00000000 ____D C:\Program Files\CCleaner
2013-11-04 18:55 - 2013-11-04 18:55 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2013-11-04 18:12 - 2013-11-04 18:12 - 00000000 ____D C:\Documents and Settings\admin\Data aplikací\Apple Computer
2013-11-04 18:05 - 2001-10-24 11:54 - 00012160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mouhid.sys
2013-11-04 18:05 - 2001-10-24 11:54 - 00012160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2013-10-28 08:42 - 2013-10-28 08:42 - 00000800 _____ C:\Documents and Settings\admin\Nabídka Start\Windows Media Player.lnk
2013-10-27 11:49 - 2013-11-05 14:05 - 01042360 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
2013-10-27 11:35 - 2013-11-05 14:00 - 00000349 _____ C:\Documents and Settings\All Users\Dokumenty\PCLECHAL.INI
2013-10-27 11:35 - 2013-10-27 11:35 - 00000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\PCTV Systems
2013-10-27 11:33 - 2013-10-27 11:33 - 00001765 _____ C:\Documents and Settings\All Users\Plocha\TVCenter.lnk
2013-10-27 11:33 - 2013-10-27 11:33 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\PCTV Systems
2013-10-27 11:33 - 2006-12-18 17:53 - 01121536 _____ (Philips Semiconductors GmbH) C:\WINDOWS\system32\Drivers\3xHybrid.sys
2013-10-27 11:33 - 2006-09-08 15:57 - 00003072 _____ C:\WINDOWS\system32\34CoInstaller.dll
2013-10-27 11:30 - 2013-10-27 11:32 - 00000000 ____D C:\Program Files\Common Files\PCTV Systems
2013-10-27 11:30 - 2013-10-27 11:30 - 00000000 ____D C:\Program Files\PCTV Systems
2013-10-27 11:27 - 2013-10-27 11:36 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\PCTV Systems
2013-10-18 20:15 - 2013-10-18 20:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB961118$
2013-10-18 13:22 - 2009-01-09 20:19 - 01089883 ____C C:\WINDOWS\system32\dllcache\ntprint.cat
2013-10-18 04:50 - 2013-10-18 04:50 - 00000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\PCHealth
2013-10-17 21:06 - 2013-11-04 23:28 - 00000000 ____D C:\Program Files\MSBuild
2013-10-17 21:06 - 2013-10-18 19:47 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2013-10-17 21:06 - 2013-10-17 21:06 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-10-17 21:05 - 2013-10-17 21:06 - 00000000 ____D C:\3f2433672f322c2f662bb99258331c4c
2013-10-17 21:05 - 2008-07-06 13:06 - 01676288 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpssvcs.dll
2013-10-17 21:05 - 2008-07-06 13:06 - 01676288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpssvcs.dll
2013-10-17 21:05 - 2008-07-06 13:06 - 00575488 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsshhdr.dll
2013-10-17 21:05 - 2008-07-06 13:06 - 00575488 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpsshhdr.dll
2013-10-17 21:05 - 2008-07-06 13:06 - 00117760 ____N (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2013-10-17 21:05 - 2008-07-06 13:06 - 00089088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\filterpipelineprintproc.dll
2013-10-17 21:05 - 2008-07-06 11:50 - 00597504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\printfilterpipelinesvc.exe
2013-10-17 21:03 - 2013-10-27 12:03 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-10-13 14:15 - 2013-10-13 14:15 - 00000000 __SHD C:\Documents and Settings\admin\IECompatCache
2013-10-11 19:11 - 2013-10-11 19:11 - 00000000 ___RD C:\Documents and Settings\admin\Nabídka Start\Tento počítač
2013-10-09 21:34 - 2013-10-09 21:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2013-10-09 21:34 - 2013-10-09 21:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2013-10-09 21:29 - 2013-10-09 21:29 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868038$
2013-10-09 21:28 - 2013-10-09 21:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$
2013-10-09 21:28 - 2013-10-09 21:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2013-10-09 16:15 - 2013-07-17 01:58 - 00123008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2013-10-09 16:15 - 2013-07-17 01:58 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2013-10-09 16:15 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2013-10-09 16:15 - 2013-07-03 02:59 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2013-10-09 16:14 - 2013-08-09 01:55 - 00144128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2013-10-09 16:14 - 2013-08-09 01:55 - 00032384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2013-10-09 16:14 - 2013-08-09 01:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2013-10-09 16:14 - 2009-03-18 12:02 - 00030336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2013-10-07 20:05 - 2013-10-07 20:05 - 00000000 ____D C:\Program Files\HP Photo Creations
2013-10-07 20:05 - 2013-10-07 20:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Visan
2013-10-07 20:05 - 2013-10-07 20:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\HP Photo Creations
2013-10-07 20:04 - 2013-10-29 23:00 - 00000000 ____D C:\Documents and Settings\admin\Data aplikací\HpUpdate
2013-10-07 20:03 - 2012-10-17 03:04 - 00580712 ____N (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPM8e11.dll
2013-10-07 20:03 - 2012-09-12 13:44 - 01979280 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\HPScanTRDrv_PSB210.dll
2013-10-07 20:03 - 2012-09-12 13:44 - 00529296 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpinksts8e11.dll
2013-10-07 20:03 - 2012-09-12 13:44 - 00496016 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPWia1_PSB210.dll
2013-10-07 20:03 - 2012-09-12 13:44 - 00269200 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpinksts8e11LM.dll
2013-10-07 20:03 - 2012-09-12 13:44 - 00221072 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpinkcoi8e11.dll
2013-10-07 20:03 - 2012-09-12 13:04 - 02216848 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpinkins8e11.exe
2013-10-07 20:02 - 2013-10-07 20:02 - 00000057 _____ C:\Documents and Settings\All Users\Data aplikací\Ament.ini
2013-10-07 19:39 - 2013-10-07 19:39 - 00000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\HP
2013-10-07 16:57 - 2013-11-06 22:01 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-10-07 16:57 - 2013-11-06 22:01 - 00000049 _____ C:\WINDOWS\wiaservc.log
2013-10-07 16:57 - 2013-10-07 16:57 - 00000000 ____N C:\WINDOWS\Sti_Trace.log
2013-10-07 16:56 - 2013-11-06 19:53 - 00032456 _____ C:\WINDOWS\SchedLgU.Txt

==================== One Month Modified Files and Folders =======

2013-11-06 22:11 - 2013-11-06 22:11 - 00000000 ____D C:\FRST
2013-11-06 22:11 - 2006-08-23 12:08 - 00000000 ___HD C:\Documents and Settings\admin\Local Settings\Data aplikací
2013-11-06 22:11 - 2006-08-23 12:08 - 00000000 ____D C:\Documents and Settings\admin\Plocha
2013-11-06 22:07 - 2013-11-05 12:42 - 00000362 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2013-11-06 22:06 - 2013-11-06 22:10 - 00112128 _____ (forum.viry.cz) C:\Documents and Settings\admin\Plocha\FRSTLauncher.exe
2013-11-06 22:02 - 2013-11-06 14:30 - 00000348 _____ C:\WINDOWS\setupact.log
2013-11-06 22:02 - 2013-11-04 23:08 - 00050656 _____ C:\WINDOWS\setupapi.log
2013-11-06 22:02 - 2006-08-23 11:41 - 01649147 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-06 22:01 - 2013-10-07 16:57 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-11-06 22:01 - 2013-10-07 16:57 - 00000049 _____ C:\WINDOWS\wiaservc.log
2013-11-06 22:00 - 2009-08-06 19:09 - 00000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-06 22:00 - 2006-08-23 11:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-11-06 21:53 - 2013-11-06 22:10 - 01089445 _____ (Farbar) C:\Documents and Settings\admin\Plocha\FRST.exe
2013-11-06 20:17 - 2009-08-06 19:09 - 00000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-06 19:53 - 2013-10-07 16:56 - 00032456 _____ C:\WINDOWS\SchedLgU.Txt
2013-11-06 19:53 - 2013-10-01 20:02 - 00131072 _____ C:\WINDOWS\system32\config\AVer Med.evt
2013-11-06 19:53 - 2013-10-01 20:02 - 00065536 _____ C:\WINDOWS\system32\config\AVer Aut.evt
2013-11-06 19:53 - 2006-08-23 12:08 - 00000178 ___SH C:\Documents and Settings\admin\ntuser.ini
2013-11-06 19:51 - 2013-11-06 19:48 - 00000000 ____D C:\AdwCleaner
2013-11-06 19:51 - 2013-10-03 17:57 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\ICQ
2013-11-06 19:21 - 2013-11-06 19:21 - 00000000 ____D C:\WINDOWS\ERUNT
2013-11-06 19:15 - 2013-11-06 19:20 - 01073262 _____ C:\Documents and Settings\admin\Plocha\adwcleaner.exe
2013-11-06 19:15 - 2013-11-06 19:19 - 01034531 _____ (Thisisu) C:\Documents and Settings\admin\Plocha\JRT.exe
2013-11-06 16:22 - 2009-08-06 15:03 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-06 14:54 - 2013-11-06 14:49 - 00000000 ____D C:\Program Files\trend micro
2013-11-06 14:50 - 2013-11-06 14:49 - 00000000 ____D C:\rsit
2013-11-06 14:49 - 2013-10-03 17:12 - 00000000 ____D C:\Documents and Settings\admin\Dokumenty\Stažené soubory
2013-11-06 14:41 - 2004-08-18 13:00 - 00001374 _____ C:\WINDOWS\system32\wpa.dbl
2013-11-06 14:30 - 2013-11-06 14:30 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-11-05 14:05 - 2013-10-27 11:49 - 01042360 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\FontCache3.0.0.0.dat
2013-11-05 14:05 - 2006-08-23 12:08 - 00000000 ____D C:\Documents and Settings\admin
2013-11-05 14:05 - 2006-08-23 11:50 - 00000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2013-11-05 14:02 - 2006-08-23 13:30 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2013-11-05 14:00 - 2013-10-27 11:35 - 00000349 _____ C:\Documents and Settings\All Users\Dokumenty\PCLECHAL.INI
2013-11-05 13:59 - 2013-10-01 20:07 - 00000000 ____D C:\Documents and Settings\admin\Dokumenty\AVerTV
2013-11-05 12:45 - 2013-11-05 12:45 - 00000000 ____D C:\Documents and Settings\admin\Data aplikací\AVAST Software
2013-11-05 12:45 - 2006-08-23 12:08 - 00000000 __RHD C:\Documents and Settings\admin\Data aplikací
2013-11-05 12:42 - 2013-11-05 12:42 - 00774392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00403440 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00269216 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2013-11-05 12:42 - 2013-11-05 12:42 - 00178304 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00049944 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2013-11-05 12:42 - 2013-11-05 12:42 - 00035656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswFsBlk.sys
2013-11-05 12:42 - 2013-11-05 12:42 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Avast
2013-11-05 12:42 - 2006-08-23 13:30 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2013-11-05 12:41 - 2013-11-05 12:41 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-05 12:38 - 2013-11-04 21:37 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2013-11-05 12:37 - 2006-08-28 10:18 - 00074568 _____ C:\Documents and Settings\admin\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2013-11-05 12:34 - 2013-11-05 12:37 - 87227720 _____ (AVAST Software) C:\Documents and Settings\admin\Plocha\avast_free_antivirus_setup.exe
2013-11-05 12:34 - 2013-11-05 12:30 - 00000000 ____D C:\Documents and Settings\Administrator\Plocha
2013-11-05 12:33 - 2013-11-05 12:30 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2013-11-05 12:33 - 2010-10-10 22:39 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Alwil Software
2013-11-05 12:32 - 2009-08-06 15:38 - 00000000 ____D C:\Program Files\Alwil Software
2013-11-05 12:32 - 2006-08-23 11:42 - 00002504 _____ C:\WINDOWS\system32\CONFIG.NT
2013-11-05 12:31 - 2013-11-05 12:31 - 00000000 __SHD C:\Documents and Settings\Administrator\IETldCache
2013-11-05 12:31 - 2013-11-05 12:30 - 00000000 ____D C:\Documents and Settings\Administrator
2013-11-05 10:28 - 2006-08-23 13:29 - 00291680 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-04 23:36 - 2013-11-04 23:30 - 00065536 _____ C:\WINDOWS\system32\config\ODiag.evt
2013-11-04 23:31 - 2013-11-04 23:31 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Office
2013-11-04 23:31 - 2013-11-04 23:20 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2013-11-04 23:28 - 2013-11-04 23:28 - 00000000 ____D C:\Program Files\Microsoft Works
2013-11-04 23:28 - 2013-11-04 23:20 - 00000000 ____D C:\Program Files\Microsoft Office
2013-11-04 23:28 - 2013-10-17 21:06 - 00000000 ____D C:\Program Files\MSBuild
2013-11-04 23:28 - 2006-08-23 13:31 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-11-04 23:27 - 2013-11-04 23:27 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2013-11-04 23:27 - 2013-11-04 23:27 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-11-04 23:27 - 2013-11-04 23:22 - 00000000 ____D C:\WINDOWS\SHELLNEW
2013-11-04 23:26 - 2013-11-04 23:26 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-11-04 23:23 - 2013-11-04 23:22 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 8
2013-11-04 23:22 - 2006-08-23 11:39 - 00000000 ____D C:\Program Files\Common Files\System
2013-11-04 23:22 - 2004-08-18 13:00 - 00000637 _____ C:\WINDOWS\win.ini
2013-11-04 23:21 - 2013-11-04 23:21 - 00000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\Microsoft Help
2013-11-04 23:20 - 2013-11-04 23:20 - 00000000 __RHD C:\MSOCache
2013-11-04 23:20 - 2006-08-23 13:30 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2013-11-04 21:18 - 2013-11-04 21:18 - 00000000 ____D C:\Program Files\CPUID
2013-11-04 21:18 - 2013-11-04 21:18 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CPUID
2013-11-04 20:39 - 2006-08-23 11:40 - 00000000 ____D C:\WINDOWS\system32\Restore
2013-11-04 19:51 - 2013-11-04 19:51 - 00000000 ____D C:\WINDOWS\pss
2013-11-04 19:51 - 2006-08-23 13:30 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2013-11-04 18:55 - 2013-11-04 18:55 - 00000682 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2013-11-04 18:55 - 2013-11-04 18:55 - 00000000 ____D C:\Program Files\CCleaner
2013-11-04 18:55 - 2013-11-04 18:55 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2013-11-04 18:37 - 2009-08-06 17:03 - 00000000 ____D C:\Documents and Settings\admin\Data aplikací\Skype
2013-11-04 18:36 - 2013-10-03 17:55 - 00000000 ____D C:\Documents and Settings\admin\Data aplikací\ICQ
2013-11-04 18:15 - 2006-08-28 10:23 - 00000000 ____D C:\Program Files\HP
2013-11-04 18:14 - 2009-08-06 17:38 - 00000000 ____D C:\Program Files\Micropro
2013-11-04 18:14 - 2006-08-23 12:08 - 00000000 ___RD C:\Documents and Settings\admin\Nabídka Start\Programy
2013-11-04 18:12 - 2013-11-04 18:12 - 00000000 ____D C:\Documents and Settings\admin\Data aplikací\Apple Computer
2013-11-04 18:12 - 2006-08-23 13:30 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start
2013-11-04 18:12 - 2006-08-23 12:08 - 00000000 ___RD C:\Documents and Settings\admin\Nabídka Start
2013-11-04 18:11 - 2009-08-06 18:27 - 00000000 ____D C:\Program Files\Rainlendar2
2013-11-04 18:11 - 2006-08-23 12:08 - 00000000 ___RD C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění
2013-10-29 23:00 - 2013-10-07 20:04 - 00000000 ____D C:\Documents and Settings\admin\Data aplikací\HpUpdate
2013-10-29 10:22 - 2013-10-01 20:50 - 00001486 _____ C:\Documents and Settings\admin\Plocha\Kalkulačka.lnk
2013-10-29 10:20 - 2013-10-01 20:50 - 00000000 ____D C:\Documents and Settings\admin\Dokumenty\Petr
2013-10-28 08:42 - 2013-10-28 08:42 - 00000800 _____ C:\Documents and Settings\admin\Nabídka Start\Windows Media Player.lnk
2013-10-27 12:03 - 2013-10-17 21:03 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-10-27 11:36 - 2013-10-27 11:27 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\PCTV Systems
2013-10-27 11:35 - 2013-10-27 11:35 - 00000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\PCTV Systems
2013-10-27 11:35 - 2006-08-23 13:30 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2013-10-27 11:33 - 2013-10-27 11:33 - 00001765 _____ C:\Documents and Settings\All Users\Plocha\TVCenter.lnk
2013-10-27 11:33 - 2013-10-27 11:33 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\PCTV Systems
2013-10-27 11:32 - 2013-10-27 11:30 - 00000000 ____D C:\Program Files\Common Files\PCTV Systems
2013-10-27 11:30 - 2013-10-27 11:30 - 00000000 ____D C:\Program Files\PCTV Systems
2013-10-27 10:50 - 2006-08-23 12:08 - 00000000 ___RD C:\Documents and Settings\admin\Oblíbené položky
2013-10-27 07:08 - 2006-08-23 13:31 - 01021836 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-10-24 18:23 - 2013-10-01 20:51 - 00000000 ____D C:\Documents and Settings\admin\Dokumenty\Zina
2013-10-20 21:50 - 2006-08-23 11:50 - 00000178 ___SH C:\Documents and Settings\LocalService\ntuser.ini
2013-10-19 13:22 - 2006-08-23 12:08 - 00000000 ___RD C:\Documents and Settings\admin\Dokumenty
2013-10-18 20:15 - 2013-10-18 20:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB961118$
2013-10-18 19:47 - 2013-10-17 21:06 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2013-10-18 04:50 - 2013-10-18 04:50 - 00000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\PCHealth
2013-10-17 21:06 - 2013-10-17 21:06 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-10-17 21:06 - 2013-10-17 21:05 - 00000000 ____D C:\3f2433672f322c2f662bb99258331c4c
2013-10-17 21:06 - 2006-08-23 13:22 - 00000000 ____D C:\WINDOWS\system32\spool
2013-10-17 21:03 - 2006-08-23 13:22 - 00000000 ____D C:\WINDOWS\system32\mui
2013-10-13 14:15 - 2013-10-13 14:15 - 00000000 __SHD C:\Documents and Settings\admin\IECompatCache
2013-10-11 19:11 - 2013-10-11 19:11 - 00000000 ___RD C:\Documents and Settings\admin\Nabídka Start\Tento počítač
2013-10-09 21:34 - 2013-10-09 21:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2013-10-09 21:34 - 2013-10-09 21:34 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2013-10-09 21:33 - 2013-10-03 04:54 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-10-09 21:30 - 2009-08-07 10:10 - 78106760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-10-09 21:29 - 2013-10-09 21:29 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868038$
2013-10-09 21:29 - 2009-08-07 10:19 - 00000000 ____D C:\WINDOWS\ie8updates
2013-10-09 21:28 - 2013-10-09 21:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$
2013-10-09 21:28 - 2013-10-09 21:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2013-10-07 20:08 - 2013-10-01 20:50 - 00000000 ____D C:\Documents and Settings\admin\Plocha\Tiskárna
2013-10-07 20:08 - 2009-08-06 18:32 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2013-10-07 20:05 - 2013-10-07 20:05 - 00000000 ____D C:\Program Files\HP Photo Creations
2013-10-07 20:05 - 2013-10-07 20:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Visan
2013-10-07 20:05 - 2013-10-07 20:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\HP Photo Creations
2013-10-07 20:05 - 2006-08-28 10:27 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\HP
2013-10-07 20:03 - 2006-08-28 10:28 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\HP
2013-10-07 20:02 - 2013-10-07 20:02 - 00000057 _____ C:\Documents and Settings\All Users\Data aplikací\Ament.ini
2013-10-07 20:02 - 2006-08-23 13:22 - 00000000 ____D C:\WINDOWS\twain_32
2013-10-07 19:39 - 2013-10-07 19:39 - 00000000 ____D C:\Documents and Settings\admin\Local Settings\Data aplikací\HP
2013-10-07 16:57 - 2013-10-07 16:57 - 00000000 ____N C:\WINDOWS\Sti_Trace.log

Some content of TEMP:
====================
C:\Documents and Settings\admin\Local Settings\Temp\GuardICQ.exe
C:\Documents and Settings\admin\Local Settings\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-18 13:00] - [2008-04-14 04:22] - 1034240 ____A (Microsoft Corporation) 27afd587c462e280ee046b8cca3c2cd1

C:\Windows\System32\winlogon.exe
[2004-08-18 13:00] - [2008-04-14 04:22] - 0507904 ____A (Microsoft Corporation) cddb1f8e1aea356f3ad106f2cf9b7fea

C:\Windows\System32\svchost.exe
[2004-08-18 13:00] - [2008-04-14 04:22] - 0014336 ____A (Microsoft Corporation) be4a520e29b6391f49e79ccc52044d93

C:\Windows\System32\services.exe
[2004-08-18 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 9ef697af07bb8dd82c3b02ca953a95b7

C:\Windows\System32\User32.dll
[2004-08-18 13:00] - [2008-04-14 04:22] - 0578560 ____A (Microsoft Corporation) e16e0990967374e76f3e40cacafd3d53

C:\Windows\System32\userinit.exe
[2004-08-18 13:00] - [2008-04-14 04:22] - 0026112 ____A (Microsoft Corporation) 7dc1830f22e7d275b438127b68030239

C:\Windows\System32\Drivers\volsnap.sys
[2004-08-18 13:00] - [2008-04-14 03:12] - 0052480 ____A (Microsoft Corporation) 28a4b296b47782173c346e376cb374d1





===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:111.78 GB) (Free:96.38 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:19.53 GB) (Free:6.48 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive e: () (Fixed) (Total:54.99 GB) (Free:54.85 GB) NTFS
Drive g: (A Bootable USB) (Removable) (Total:7.27 GB) (Free:2.63 GB) NTFS

Available physical RAM: 1639.08 MB
Total physical RAM: 2047.3 MB
Percentage of memory in use: 19%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 75 GB) (Disk ID: DA39DA39)
Partition 1: (Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=55 GB) - (Type=OF Extended)
Disk: 1 (Size: 112 GB) (Disk ID: ACC5ACC5)
Partition 1: (Active) - (Size=112 GB) - (Type=07 NTFS)
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 7 GB) (Disk ID: 00000000)
Partition 1: (Active) - (Size=7 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 28_09_2013 (06)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Documents and Settings\admin\Plocha" je 1939 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ
"C:\Program Files\ICQ7.7\ICQ.exe" silent loginmode=4 [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObitBar Browser Plugin Loader
C:\PROGRA~1\IObitBar\toolbar\1.bin\i0brmon.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck
C:\WINDOWS\system32\NeroCheck.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoTerm.exe
C:\Program Files\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
"C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^AVerQuick.lnk
C:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERQU~1.EXE

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^HP Digital Imaging Monitor.lnk
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^SnugTV Quick Start.lnk
C:\WINDOWS\INSTAL~1\{AB3ED~1\NEWSHO~2.EXE

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Vyhledat aktualizace.lnk
C:\PROGRA~1\COMMON~1\PCTVSY~1\WEBUPD~1\WEBUPD~1.EXE


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\ICQ7.7\\ICQ.exe"="C:\\Program Files\\ICQ7.7\\ICQ.exe:*:Enabled:ICQ7.7"


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\SnugTV\\SnugTV Station\\ConfigWizard.exe"="C:\\Program Files\\SnugTV\\SnugTV Station\\ConfigWizard.exe:*:Enabled:SnugTV Configuration Wizard"
"C:\\Program Files\\ICQ7.7\\ICQ.exe"="C:\\Program Files\\ICQ7.7\\ICQ.exe:*:Enabled:ICQ7.7"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\HP\\HP Photosmart Plus B210 series\\Bin\\DeviceSetup.exe"="C:\\Program Files\\HP\\HP Photosmart Plus B210 series\\Bin\\DeviceSetup.exe:LocalSubNet:Enabled:Instalace zazen HP (HP Photosmart Plus B210 series)"
"C:\\Program Files\\HP\\HP Photosmart Plus B210 series\\Bin\\HPNetworkCommunicator.exe"="C:\\Program Files\\HP\\HP Photosmart Plus B210 series\\Bin\\HPNetworkCommunicator.exe:LocalSubNet:Enabled:Sov komunikan program HP (HP Photosmart Plus B210 series)"
"C:\\Program Files\\HP\\HP Photosmart Plus B210 series\\Bin\\HPNetworkCommunicatorCom.exe"="C:\\Program Files\\HP\\HP Photosmart Plus B210 series\\Bin\\HPNetworkCommunicatorCom.exe:LocalSubNet:Enabled:Sov komunikan program HP COM (HP Photosmart Plus B210 series)"
"C:\\Program Files\\SnugTV\\SnugTV Station\\AMAServer.exe"="C:\\Program Files\\SnugTV\\SnugTV Station\\AMAServer.exe:*:Enabled:SnugTV Service"
"C:\\Program Files\\PCTV Systems\\TVCenter\\TVCenter.exe"="C:\\Program Files\\PCTV Systems\\TVCenter\\TVCenter.exe:*:Enabled:PCTV Systems TVCenter"
"C:\\Program Files\\Common Files\\PCTV Systems\\PVR\\VideoControl.exe"="C:\\Program Files\\Common Files\\PCTV Systems\\PVR\\VideoControl.exe:*:Enabled:PCTV Systems VideoControl"
"C:\\Program Files\\Common Files\\PCTV Systems\\StreamingServer\\StrmServer.exe"="C:\\Program Files\\Common Files\\PCTV Systems\\StreamingServer\\StrmServer.exe:*:Enabled:PCTV Systems DistanTV classic"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP"="1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007"
"2869:TCP"="2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008"
"139:TCP"="139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002"


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000


==================== End Of Log ==============================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#6 Příspěvek od vyosek »

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [RemoteControl] - C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe [32768 2005-01-12] (Cyberlink Corp.)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
MountPoints2: {92745003-32a1-11db-b390-806d6172696f} - D:\setup.exe
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledovat výstrahy inkoustu - HP Photosmart Plus B210 series.lnk

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: HKCU - (No Name) - {7757CBCC-0975-4b79-A519-90B142CA3A23} - C:\Program Files\IObitBar\toolbar\1.bin\i0SrcAs.dll No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - Yahoo! URL = http://us.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=iobit-trans
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {CF670C0A-2ED2-48F4-AA11-C9447F50C205} URL = http://search.centrum.cz/index.php?q={searchTerms}&toolbar=centrum-1.0.0
Toolbar: HKLM - IObit Toolbar - {EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} - C:\Program Files\IObitBar\toolbar\1.bin\i0bar.dll No File
Toolbar: HKLM - No Name - {D5D47440-0750-463D-BAEF-A47D02414806} - No File
Toolbar: HKCU - No Name - {D5D47440-0750-463D-BAEF-A47D02414806} - No File
Toolbar: HKCU - IObit Toolbar - {EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} - C:\Program Files\IObitBar\toolbar\1.bin\i0bar.dll No File

FF DefaultSearchEngine: ICQ Search
FF SelectedSearchEngine: ICQ Search
FF Plugin: @IObitBar.com/Plugin - C:\Program Files\IObitBar\toolbar\1.bin\NPi0Stub.dll No File
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\icqplugin.gif
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\icqplugin.src
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\IObitBar.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Cetrumcz_igeared.xml
FF HKLM\...\Firefox\Extensions: [i0ffxtbr@IObitBar.com] - C:\Program Files\IObitBar\toolbar\1.bin

CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (IObit Toolbar Plugin Stub) - C:\Program Files\IObitBar\toolbar\1.bin\NPi0Stub.dll No File
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

S2 IObitBarService; C:\PROGRA~1\IObitBar\toolbar\1.bin\i0barsvc.exe [x]
DisableService: gupdate1ca16bfb9352374

C:\Program Files\IObitBar
C:\Documents and Settings\admin\Local Settings\Temp\GuardICQ.exe
C:\Documents and Settings\admin\Local Settings\Temp\Quarantine.exe

Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObitBar Browser Plugin Loader" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^HP Digital Imaging Monitor.lnk" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Vyhledat aktualizace.lnk" /f

Hosts:

End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
jamet
Návštěvník
Návštěvník
Příspěvky: 116
Registrován: 10 pro 2008 21:08

Re: Kontrola

#7 Příspěvek od jamet »

Zde vkládám log, zatím se to jeví slibně aspoň start pc byl svižnější :|

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 31-10-2013
Ran by admin at 2013-11-07 11:25:05 Run:1
Running from C:\Documents and Settings\admin\Plocha
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [RemoteControl] - C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe [32768 2005-01-12] (Cyberlink Corp.)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Run: [MSMSGS] - C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKCU\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
MountPoints2: {92745003-32a1-11db-b390-806d6172696f} - D:\setup.exe
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledovat výstrahy inkoustu - HP Photosmart Plus B210 series.lnk

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
URLSearchHook: HKCU - (No Name) - {7757CBCC-0975-4b79-A519-90B142CA3A23} - C:\Program Files\IObitBar\toolbar\1.bin\i0SrcAs.dll No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - Yahoo! URL = http://us.search.yahoo.com/search?p={se ... obit-trans
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {CF670C0A-2ED2-48F4-AA11-C9447F50C205} URL = http://search.centrum.cz/index.php?q={s ... trum-1.0.0
Toolbar: HKLM - IObit Toolbar - {EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} - C:\Program Files\IObitBar\toolbar\1.bin\i0bar.dll No File
Toolbar: HKLM - No Name - {D5D47440-0750-463D-BAEF-A47D02414806} - No File
Toolbar: HKCU - No Name - {D5D47440-0750-463D-BAEF-A47D02414806} - No File
Toolbar: HKCU - IObit Toolbar - {EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} - C:\Program Files\IObitBar\toolbar\1.bin\i0bar.dll No File

FF DefaultSearchEngine: ICQ Search
FF SelectedSearchEngine: ICQ Search
FF Plugin: @IObitBar.com/Plugin - C:\Program Files\IObitBar\toolbar\1.bin\NPi0Stub.dll No File
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\icqplugin.gif
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\icqplugin.src
FF SearchPlugin: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\IObitBar.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Cetrumcz_igeared.xml
FF HKLM\...\Firefox\Extensions: [i0ffxtbr@IObitBar.com] - C:\Program Files\IObitBar\toolbar\1.bin

CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (IObit Toolbar Plugin Stub) - C:\Program Files\IObitBar\toolbar\1.bin\NPi0Stub.dll No File
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

S2 IObitBarService; C:\PROGRA~1\IObitBar\toolbar\1.bin\i0barsvc.exe [x]
DisableService: gupdate1ca16bfb9352374

C:\Program Files\IObitBar
C:\Documents and Settings\admin\Local Settings\Temp\GuardICQ.exe
C:\Documents and Settings\admin\Local Settings\Temp\Quarantine.exe

Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObitBar Browser Plugin Loader" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^HP Digital Imaging Monitor.lnk" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Vyhledat aktualizace.lnk" /f

Hosts:

End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\RemoteControl => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\LinkResolveIgnoreLinkInfo => Value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoResolveSearch => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\MSMSGS => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\LinkResolveIgnoreLinkInfo => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{92745003-32a1-11db-b390-806d6172696f} => Key deleted successfully.
HKCR\CLSID\{92745003-32a1-11db-b390-806d6172696f} => Key not found.
C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledovat výstrahy inkoustu - HP Photosmart Plus B210 series.lnk => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{7757CBCC-0975-4b79-A519-90B142CA3A23} => Value deleted successfully.
HKCR\CLSID\{7757CBCC-0975-4b79-A519-90B142CA3A23} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\Yahoo! => Key deleted successfully.
HKCR\Wow6432Node\CLSID\Yahoo! => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF670C0A-2ED2-48F4-AA11-C9447F50C205} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{CF670C0A-2ED2-48F4-AA11-C9447F50C205} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} => Value deleted successfully.
HKCR\CLSID\{EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{D5D47440-0750-463D-BAEF-A47D02414806} => Value deleted successfully.
HKCR\CLSID\{D5D47440-0750-463D-BAEF-A47D02414806} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D5D47440-0750-463D-BAEF-A47D02414806} => Value deleted successfully.
HKCR\CLSID\{D5D47440-0750-463D-BAEF-A47D02414806} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} => Value deleted successfully.
HKCR\CLSID\{EFA17369-CDC0-4927-9AFC-BAAD1F96B2AE} => Key not found.
Firefox DefaultSearchEngine deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
HKLM\Software\MozillaPlugins\@IObitBar.com/Plugin => Key deleted successfully.
C:\Program Files\IObitBar\toolbar\1.bin\NPi0Stub.dll not found.
C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\icqplugin.gif => Moved successfully.
C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\icqplugin.src => Moved successfully.
C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\5r9alnj5.default\searchplugins\IObitBar.xml => Moved successfully.
C:\Program Files\mozilla firefox\searchplugins\Cetrumcz_igeared.xml => Moved successfully.
HKLM\Software\Mozilla\Firefox\Extensions\\i0ffxtbr@IObitBar.com => Value deleted successfully.
C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll not found.
C:\Program Files\IObitBar\toolbar\1.bin\NPi0Stub.dll not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl => Key deleted successfully.
C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx => Moved successfully.
IObitBarService => Service deleted successfully.
gupdate1ca16bfb9352374 service was disabled
"C:\Program Files\IObitBar" => File/Directory not found.
C:\Documents and Settings\admin\Local Settings\Temp\GuardICQ.exe => Moved successfully.
C:\Documents and Settings\admin\Local Settings\Temp\Quarantine.exe => Moved successfully.
C:\WINDOWS\Tasks\avast! Emergency Update.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update" /f =========


Operace byla dokončena úspěšně.


========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ" /f =========


Operace byla dokončena úspěšně.


========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObitBar Browser Plugin Loader" /f =========


Operace byla dokončena úspěšně.


========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck" /f =========


Operace byla dokončena úspěšně.


========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype" /f =========


Operace byla dokončena úspěšně.


========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^HP Digital Imaging Monitor.lnk" /f =========


Chyba: Systém nenalezl zadaný klíč registru nebo požadovanou hodnotu.


========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabdka Start^Programy^Po sputn^Vyhledat aktualizace.lnk" /f =========


Chyba: Systém nenalezl zadaný klíč registru nebo požadovanou hodnotu.


========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

==== End of Fixlog ====
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#8 Příspěvek od vyosek »

Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
jamet
Návštěvník
Návštěvník
Příspěvky: 116
Registrován: 10 pro 2008 21:08

Re: Kontrola

#9 Příspěvek od jamet »

Moc Vám děkuji za pomoc. Velmi si toho vážím, je stále možnost podpořit Vaši práci? Děkuji a přeji hezký den, Petr.
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#10 Příspěvek od vyosek »

Nemate zac, rad jsem pomohl :worship: Zase nekdy Obrázek

Za pripadnou podporu fora jmenem celeho tymu dekuji :thumbsup: Moznosti podpory jsou stale stejne, viz odkaz v mem podpisu :)


A na zaklade Pravidla o zamykani temat :lock:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“